Amazon Linux 2 Security Advisory: ALAS-2018-1060
Advisory Release Date: 2018-08-21 23:34 Pacific
A use-after-free flaw in OpenSLP 1.x and 2.x baselines was discovered in the ProcessSrvRqst function. A failure to update a local pointer may lead to heap corruption. A remote attacker may be able to leverage this flaw to gain remote code execution.(CVE-2017-17833 )
Run yum update openslp to update your system.